Archive for the ‘Forgery’ Category

I was on safari in the darknet this morning and I came across the site above. The address is druglixdfcb3gda3.onion and as you can see it proclaims it is selling supernotes of American currency. Of course this is always of interest to me and they are making claims about printing specs and things that sound right. However, when you look closer at the site you see that it is not quite finished. It has some lorem ipsum text in there and it also has a lot of broken image links so you get no sample images at all even though they are linking to them.

They even have testimonials! Yet they don’t work either. Now, it got my interest at the bottom there where the site is claiming that you can contact them on the information below. Which, well, is all clearnet addressing and contains a physical address in Italy as well as a domain and email address in the UK! I had to look twice there to make sure I wasn’s seeing things. So I began looking more closely at the code and pulled up the information on the domain that they listed with a contact email of contact@andia.co.uk.

Once I pulled up Domain Tools, I saw that the domain has been around since 2014 and has not changed hands. I did some looking on the Wayback Machine and saw that there really never has been a site and that the names attached to the firm were a couple guys in London, which matched the address in the domain data. I then looked up these guys and found some interesting congruences. Andia LTD has been dissolved as of 2016 and dig this, one of these guys is a specialist in “bank fraud”

*blink blink*

So, um, how coincidental is it that this domain of a dissolved company of a couple thirty somethings in the UK has one that is a specialist in banking and fraud? Hmmmmm… Well, it goes down the rabbit hole pretty quickly and I was thinking OK! I am on to something here but then I started to look at the code some more… It turns out that if you start to Google the code and key words on the page you get a LOT of hits elsewhere. It turns out that this site in the darknet was using code from a free template created by this guy Anli Zaimi, who has a bunch of these templates. So, was this all just for naught? I mean, there are a lot of sites that seem really really sketch using his template and many do not bother to redact the contact details that he put in there.

Also, since this domain is real (andia.co.uk) how does that fit in? Then there is the whole thing with the banking connection and failed businesses. I am letff scratching my head a little here. I mean, who puts up a forgers site so poorly in the darknet? OK ok ok, the darknet really is the Geoshitties of the 2000’s right? So yeah some nitwit just flung this hapless piece of shit up there…

But…

This site has been around a while. Why? No changes? Static and just bad.

Oh well… I even did the due diligence and emailed the contact address and it bounced, so, it ain’t there. I guess in the end it just shows you that the darknet is a garbage heap full of the strangest detritus. I did learn one thing though, this guy’s template is the go to for scammers it seems.

It’s just that most of them are so code illiterate that they don’t take out the dummy data and leave a long trail on google.

K.

Rate this:

I was surfing the high digital seas of the darknet the other day and came across a couple sites that I thought were interesting and would share with you all. The first site is an emporium that sells a little of everything but mostly drugs but in their “forgeries and counterfeit” section I came across some goodies in their internal search engine. Primarily what I am going to bring you today kids is how you too can buy forged documents in the darknet to start a new life somewhere in the world. Watch now as I unfold to you this tale of tradecraft and OPSEC….

PSA: Ok ok, yeah buying this stuff in the darknet is likely to have one of three outcomes..

1) You pay and you get nothing.

2) You pay and you get arrested when you pick up the package.

3) You pay, you get the package, and then are arrested trying to use the documents.

SO DON’T TRY THIS AT HOME KIDS!

Right, back to the whole buying fake documents and how to use them thing! So if you do want to have an alternate identification you can attempt to use the documents being sold in the darknet but you have to do your leg work too. See, if you want a real and lasting identity (other than your own) then you have to do this slowly and carefully. Much of this really relies on the quality of the documents as well as the backstopping you will need to do in order to have at least a chance of using them effectively. The first thing you will want to do is get an SSN that is clean and with the way things are now so interconnected, it may be harder today than it was in the almost recent past to get a clean one that is age appropriate to you.

Yes, they are tagged by age you know…

Used to be a day when you could go all “Day of the Jackal” and find someone who was approximately your age in a cemetery who had died young. You could then get the birth certificate (buy it) and then use that to start the process. Now, today that may be harder but if you are like me, it may be something that they did not digitize yet (old) so you could either get a new SSN card by paying for that one as well, with the birth cert and likely another ID like a drivers license (which you can purchase in the darknet too) and you have a real one. Or, you could get this person’s SSN number and just have that used on the fake card you want to buy in the darknet. Either way, you are backstopping the identity by doing this and thus may even pass a cursory investigation by the likes of the police.

An alternative to this would be to just pick someone out that you have their data and start there with their SSN on a new card along with a drivers license and such. It really depends on how deeply you want to go though. See, what is being sold on this particular site is really geared more to creating a quick ID to use for fraud (carding, creating new bank accounts, etc) which to me is less of a challenge than actually having a backstopped and living second identity that you can use to just disappear with if need be. But to have such a thing you have to maintain it all as well as get the right documentation and quality of product.

If you are going to create a second or even a tertiary identity then you will need all these kinds of documents as well as the odd ones shown above such as bills with your name and address on it to start accounts. Those accounts, should include a residence, an apartment say, and should be maintained with actual mail and traffic that can be actually verified as existing if you are going long term. Bank accounts with actual funds should be created as well as credit accounts that should be maintained and used to show a past history too. Basically you have to live that identity to some extent yourself to keep it alive and functional. I know, it’s a pain in the ass but if you want to really do it, well, you gotta have some responsibility here. This all would also include creating your own legend and potentially more paper trail such as some W2’s etc if you are going for the full Monty.

Some of you I can tell are thinking “fuck that” … Ok, well, up to you.

Anyway, there is a lot to this that I am not going to lay it all out for you as that might be bad. Suffice to say that you get what you paid for in the darknet so be careful and remember Caveat Emptor. There are many places to buy this stuff but just as many that are either federal fronts or scammers looking to just take your bitcoin and run.

Be careful out there… and you never saw me.

K.

PS.. If you are good at Graphic design you can likely just make some of this stuff yourself.